Messages

1

23.7 Legacy Series / Compensating for Slow PPPoE Connection

« on: August 24, 2023, 07:10:41 pm »

Hi,

I have an FTTH setup over PPPoE that has been working flawlessly on OPN for almost a year now, but all of a sudden the connection no longer works. After a few hours of investigation I found out that:

• OPN will wait and retry 9 seconds for the authentication
• the ISP now responds after 12 seconds
• a router on openwrt is able to authenticate after a retry

Is there any way to adjust the authentication wait on the OPN side so I can compensate for the degraded infrastructure?

2

General Discussion / Re: UDP Broadcast Relay

« on: May 15, 2023, 04:47:34 am »

Hi all,

I'm currently using UDPBR as a relay for the Unifi Discovery Protocol, and things have been working swimmingly since day one of my opn deployment. Recently, I've been wanting to setup a failover Multi-WAN and have followed the instructions here.

Things worked, however I've noticed that the relay no longer responds how I want it to. I did a little investigation and found the following:

• Wireshark shows that the packets are still being broadcast
• Setting the "Default Allow LAN to any" rule's gateway to "default" makes things work (not an option due to the routing getting all wonky)

Has anyone successfully used UDPBR on a multi-WAN setup? I realize this might not be related to UDPBR at all, but just wanted to boomerang this here just in case.

3

22.7 Legacy Series / Troubleshooting DNS Issues

« on: January 10, 2023, 07:32:28 am »

Hello everyone,

I've recently jumped into Opnsense with a DEC2750, and everything has gone swimmingly well for the initial few months. Since December, however, I've been running into some weird issues with DNS and I've already reached a stump in my troubleshooting process.

My current setup is as follows:
Client -> AdGuard Home -> Unbound

The primary issue: DNS resolutions are slow. This is corroborated by the "Response" columns in AdGuard Home showing up to 10 seconds in processing, other users noticing slow page load times and timeouts, and via testing via Interfaces > Diagnostics > DNS Lookup.

Things that I have tried:

• Enable Query Forwarding in Unbound - this does not solve the issue
• Switch from Unbound to Dnsmasq - the response time issues still persist
• Use DNS server configurations in AGH - response times become consistent

While I can use the third solution and be done with it, the DNS lookup problems in the firewall remain (spiking up to 10 seconds in query response times). It also doesn't make sense: why would DNS directly via AGH work fine, but not when I use Opnsense as upstream?

Your insights on the matter would be greatly appreciated!